CVE-2022-47157
CVE-2022-47157 concerns the WordPress plugin WP Custom Fields Search (Don Benjamin) up to version 1.2.34. The vulnerability is a stored XSS caused by insufficient sanitization/escaping in plugin settings, exploitable by users with admin privileges (administrator+). Impact is stored script injecti...